Progress Confirms Zero-Day Vulnerability Behind ShareFile Disruption
Progress Software has confirmed that a zero-day vulnerability was behind the recent ShareFile Storage Zones Controller disruption and that access to the service is being restored.
The confirmation comes two days after the company disabled access to ShareFile accounts for all customers using Storage Zones Controllers, citing ‘a credible external security threat’.
“As of Tuesday, July 14th, access has been restored for Progress ShareFile Storage Zones Controller customers following the service disruption we communicated previously,” Progress told SecurityWeek.
The company explained that it prompted customers to shut down their servers running Storage Zones Controllers due to a high-severity vulnerability in versions 5.x and 6.x of the product.
“We developed and released patched versions to customers, and once patched, these customers’ Storage Zones Controllers will be operational,” Progress said.
The company has not shared details on the vulnerability and has yet to respond to SecurityWeek’s follow-up questions, but said it...
Copyright of this story solely belongs to securityweek.com. To see the full text click HERE